Edited by
Russ Rogers, Russ Rogers (CISSP, CISM, IAM, IEM, Hon. Sc.D.), author of the popular "Hacking a Terror Network: The Silent Threat of Covert Channels"
(Syngress, ISBN: 978-1-928994-98-5), co-author of multiple books, including the best-selling "Stealing the Network: How to Own a Continent"
(Syngress, ISBN: 978-1-931836-05-0) and "Network Security Evaluation Using the NSA IEM" (Syngress, ISBN: 978-1-59749-035-1), and former
editor-in-chief of The Security Journal, is currently a penetration tester for a federal agency and the co-founder and chief executive
officer of Peak Security, Inc., a veteran-owned small business based in Colorado Springs, CO. Russ has been involved in information technology
since 1980 and has spent the past 20 years working as both an IT and InfoSec consultant. Russ has worked with the U.S. Air Force (USAF),
National Security Agency (NSA), Defense Information Systems Agency (DISA), and other federal agencies. He is a globally renowned security
expert, speaker, and author who has presented at conferences around the world in Amsterdam, Tokyo, Singapore, São Paulo, Abu Dhabi,
and cities all over the United States. Russ has an honorary doctorate of science in information technology from the University of Advancing
Technology, a master's degree in computer systems management from the University of Maryland, a bachelor of science degree in computer
information systems from the University of Maryland, and an associate's degree in applied communications technology from the Community
College of the Air Force. He is a member of ISSA and (ISC)2® (CISSP). Russ also teaches at and fills the role of professor of network
security for the University of Advancing Technology (www.uat.edu).
Description
The Updated Version of the Bestselling Nessus Book.
This is the ONLY Book to Read if You Run Nessus Across the Enterprise
Ever since
its beginnings in early 1998, the Nessus Project has attracted security researchers from all walks of life. It continues this growth
today. It has been adopted as a de facto standard by the security industry, vendor, and practitioner alike, many of whom rely on Nessus
as the foundation to their security practices. Now, a team of leading developers have created the definitive book for the Nessus community.
* Perform a Vulnerability Assessment
Use Nessus to find programming errors that allow intruders to gain unauthorized access.
*
Obtain and Install Nessus
Install from source or binary, set up up clients and user accounts, and update your plug-ins.
* Modify
the Preferences Tab
Specify the options for Nmap and other complex, configurable components of Nessus.
* Understand Scanner Logic
and Determine Actual Risk
Plan your scanning strategy and learn what variables can be changed.
* Prioritize Vulnerabilities
Prioritize
and manage critical vulnerabilities, information leaks, and denial of service errors.
* Deal with False Positives
Learn the different
types of false positives and the differences between intrusive and nonintrusive tests.
* Get Under the Hood of Nessus
Understand
the architecture and design of Nessus and master the Nessus Attack Scripting Language (NASL).
* Scan the Entire Enterprise Network
Plan for enterprise deployment by gauging network bandwith and topology issues.
Audience:
Network Administrators and security specialists running Nessus or considering its use.
